Scanned pages/files
| Request | Server response | Status |
http://cmegroup.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Mar 2015 14:10:56 GMT Location: http://www.cmegroup.com/ Server: AkamaiGHost Content-Length: 0 | clean |
http://www.cmegroup.com/ | 200 OK Content-Length: 151179 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<style type="text/css">.cmeDynamicForm .cmeButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicForm .cmeButton.cmeDynamicShow {display:block;}</style>'); Antivirus reports:
| ||
http://www.cmegroup.com//ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js/ | 404 Not Found Content-Length: 63274 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<style type="text/css">.cmeDynamicForm .cmeButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicForm .cmeButton.cmeDynamicShow {display:block;}</style>'); Antivirus reports:
| ||
http://www.cmegroup.com//ajax.googleapis.com/ajax/libs/jqueryui/1.10.1/jquery-ui.min.js/ | 404 Not Found Content-Length: 63274 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<style type="text/css">.cmeDynamicForm .cmeButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicForm .cmeButton.cmeDynamicShow {display:block;}</style>'); Antivirus reports:
| ||
https://www.google.com/jsapi | 200 OK Content-Length: 24559 Content-Type: text/javascript | clean |
http://www.cmegroup.com/apps/cmegroup/widgets/commonTopLibs.js | 200 OK Content-Length: 77053 Content-Type: application/javascript | clean |
http://www.cmegroup.com//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 63274 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<style type="text/css">.cmeDynamicForm .cmeButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicForm .cmeButton.cmeDynamicShow {display:block;}</style>'); Antivirus reports:
| ||
http://tags.crwdcntrl.net/c/3114/cc.js?ns=_cc3114 | 200 OK Content-Length: 43575 Content-Type: application/x-javascript | clean |
http://www.cmegroup.com/apps/cmegroup/widgets/commonLibs.js | 200 OK Content-Length: 125459 Content-Type: application/javascript | clean |
http://www.cmegroup.com/tools-information/communications/sub-center.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Mar 2015 14:11:01 GMT Location: http://pages.cmegroup.com/subscription-center-sign-in.html Server: Apache Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 20 Content-Type: text/html Access-Control-Allow-Origin: http://www.cmegroup.com Access-Control-Allow-Origin: http://wwwstc.cmegroup.com Access-Control-Allow-Origin: http://cmegroup-prod-004s.chicago.cme.com Access-Control-Allow-Origin: http://cmegroup-prod-004s Access-Control-Allow-Origin: http://cmegroup.com Access-Control-Allow-Origin: http://wwwwest.cmegroup.com X-Frame-Options: SAMEORIGIN | clean |
http://pages.cmegroup.com/subscription-center-sign-in.html | 200 OK Content-Length: 30969 Content-Type: text/html | clean |
https://app.marketo.com/js/public/jquery-latest.min.js | 200 OK Content-Length: 55774 Content-Type: application/x-javascript | clean |
http://www.cmegroup.com//b2c-msm.marketo.com/jsloader/ccecd25a-f69c-420b-8882-2dedffe79a80/loader.php.js/ | 404 Not Found Content-Length: 63274 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<style type="text/css">.cmeDynamicForm .cmeButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicForm .cmeButton.cmeDynamicShow {display:block;}</style>'); Antivirus reports:
| ||
http://www.cmegroup.com/trading/products/index.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Mar 2015 14:11:04 GMT Location: http://www.cmegroup.com/trading/products/ Server: Apache Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 206 Content-Type: text/html; charset=iso-8859-1 X-Frame-Options: SAMEORIGIN | clean |
http://www.cmegroup.com/trading/products/ | 200 OK Content-Length: 288022 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<style type="text/css">.cmeDynamicForm .cmeButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicForm .cmeButton.cmeDynamicShow {display:block;}</style>'); Antivirus reports:
| ||
http://www.cmegroup.com/apps/cmegroup/widgets/productSlateLibs.js | 200 OK Content-Length: 21650 Content-Type: application/javascript | clean |
http://www.cmegroup.com/trading/agricultural/index.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Mar 2015 14:11:05 GMT Location: http://www.cmegroup.com/trading/agricultural/ Server: Apache Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 210 Content-Type: text/html; charset=iso-8859-1 X-Frame-Options: SAMEORIGIN | clean |
http://www.cmegroup.com/trading/agricultural/ | 200 OK Content-Length: 147495 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<style type="text/css">.cmeDynamicForm .cmeButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicButton {display:none;}</style>'); document.write('<style type="text/css">.cmeDynamicForm .cmeButton.cmeDynamicShow {display:block;}</style>'); Antivirus reports:
| ||
http://www.cmegroup.com/apps/cmegroup/widgets/imageBannerLibs.js | 200 OK Content-Length: 9953 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cmegroup.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 25 Mar 2015 14:10:56 GMT
Location: http://www.cmegroup.com/
Server: AkamaiGHost
Content-Length: 0
...0 bytes of data.
GET / HTTP/1.1
Host: cmegroup.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 25 Mar 2015 14:10:56 GMT
Location: http://www.cmegroup.com/
Server: AkamaiGHost
Content-Length: 0
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: cmegroup.com
Referer: http://www.google.com/search?q=cmegroup.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cmegroup.com
Referer: http://www.google.com/search?q=cmegroup.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cmegroup.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cmegroup.com/
Result: cmegroup.com is not infected or malware details are not published yet.
Result: cmegroup.com is not infected or malware details are not published yet.